• @[email protected]
    link
    fedilink
    14 months ago

    Firefox treats insecure sites as dangerous and tries to tell the user to beware

    I only get that behavior when setting HTTPS-only. If I dont, I think it may display a warning but thats it.

    Are you saying that LibreWolf sends one without OS?

    No they often take Windows 10 on FF ESR

    Sometimes I do need to know iPad vs iPhone

    I think that is a problem of the browser isnt it? And how does a “desktop site” button work? Does it change the UA or is there a different way to switch between the site views?

    I dont know why this couldnt be done with a “safari on iPadOS” vs “Safafi on iOS” or a separate value for “phone”, “tablet”, “desktop”.

    The OS is way less important than the browser and the form factor here.

    • @TrickDacy
      link
      1
      edit-2
      4 months ago

      I think it may display a warning but thats it.

      Yeah that’s what I said. It is your opinion that a warning is not enough but I very much don’t feel that way. Users should be treated like adults by default.

      No they often take Windows 10 on FF ESR

      I don’t know what this means unless you’re saying it just always reports win 10

      As far as the rest of your comment… I have been building websites for 20 years now and I’m not content to do things the wrong way, so I’ve researched and considered the available options.

      It doesn’t matter if it’s a “browser problem” since I don’t get to tell users that iOS sucks ass, which it does.

      Kind of feels dismissive the way you’re hand waving away all the problems I deal with all the time. Like I said, until browsers behave consistently or at least predictably if they don’t support something, UA will be needed sometimes. I haven’t needed it for anything but safari in a long time but again I don’t get to tell those users to get a decent browser. On iOS they don’t even have that option if they were to want another browser.

      • @[email protected]
        link
        fedilink
        14 months ago

        Users should be treated like adults by default

        Thats why there is an “accept the risk and proceed” button ;)

        By default, Firefox loads Javascript from any site. The Pegasus Trojan was transmitted by hijacking 2G and 3G network connections, and using malicious HTTP redirects that wouldnt work with HTTPS.

        They are zero-click, meaning just opening that site would run the code.

        i think security should be normalized.

        it just always reports win 10

        It reports to be Firefox ESR on Windows 10. Maybe Windows 11 now.

        you’re hand waving away all the problems I deal with all the time.

        I didnt. I just find it odd that you need to know the OS to display a site for 3 different form factors. But if that is true, then a UA might be a solution.

        • @TrickDacy
          link
          14 months ago

          I just find it odd that you need to know the OS to display a site for 3 different form factors

          Yeah, a lot of things seem odd until you take 20 years to understand them.